Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Keying material exporters #116

Closed
vasilvv opened this issue Apr 17, 2023 · 10 comments · Fixed by #148
Closed

Keying material exporters #116

vasilvv opened this issue Apr 17, 2023 · 10 comments · Fixed by #148
Assignees
@vasilvv
Labels
has pull request Issues for which a pull request exists ietf-117 Issues discussed at IETF 117

Comments

@vasilvv
Copy link
Collaborator

vasilvv commented Apr 17, 2023

Per w3c/webtransport#411, there is some interest in using key exporters with WebTransport. While in theory that could be purely an API concept, given that we do things like pooling (and given that we should register exporter labels with IANA), it probably would make sense to define the exact mechanism in this document.

I propose the following. A WebTransport exporter takes (label, context, length) as input, similar to the TLS ones. To derive a WebTransport exporter, derive a TLS key exporter with label EXPORTER-WebTransport and the context being the following:

WebTransport Exporter Context {
  WebTransport Session ID (64),
  WebTransport Application-Supplied Exporter Label Length (32),
  WebTransport Application-Supplied Exporter Label (..),
  WebTransport Application-Supplied Exporter Context (..)
}

This should help avoiding collisions with non-WebTransport exporters, as well as WebTransport exporters from different pooled sessions. What do people think?
@vasilvv vasilvv mentioned this issue Apr 17, 2023
Open
@DavidSchinazi
Copy link
Collaborator

SGTM

@DavidSchinazi
Copy link
Collaborator

Chair: discussed in editor's meeting. We'd like to get @martinthomson 's opinion before writing a PR.

@martinthomson
Copy link
Contributor

You don't have a field for the context length, which isn't technically incorrect, but I'd prefer not to rely on the TLS layer having a length field of its own so that you can delineate the context field.

Fixed-size lengths are good here as you avoid canonicalization challenges with varints, so that is good.

The similarities with TLS ensure that you can switch out QUIC for WebTransport, which seems to be a goal here that is worth explaining. Otherwise, the "label" and "context" separation only exists for that reason.

Overall, this is pretty much what we discussed on the referenced issue. I'm not seeing a ton of urgency around this feature, but what @vasilvv describes is a good approach.

@DavidSchinazi
Copy link
Collaborator

Chair: discussed in editor's meeting, some folks think we should remove this and punt to an extension, while others prefer to keep it. Let's discuss at 117.

@DavidSchinazi DavidSchinazi added ietf-117 Issues discussed at IETF 117 and removed ready for PR labels Jun 27, 2023
@DavidSchinazi
Copy link
Collaborator

Chair: discussed at 117. @marten-seemann is supportive and has a use case but multiple people said this wasn't necessary. Agreement in the room that this would be implemented only in browsers due to the need for a security boundary between a layer that has access to the TLS keying material (browser) and a layer that does not (JavaScript). Right now there is no consensus to add this. @marten-seemann will take an action item to file an issue at the W3C to try to gather more use cases there. If the W3C comes back to us with a strong need for this we will revisit.

@Neustradamus
Copy link

To follow.

@DavidSchinazi
Copy link
Collaborator

Chair: discussed in editor's meeting. @marten-seemann have you found more supporters for this? If not we'll close this as it can always be added as an extension later.

@DavidSchinazi
Copy link
Collaborator

Chair: closing due to lack of interest

@Neustradamus
Copy link

@vasilvv, @martinthomson, @DavidSchinazi, @ietf-wg-webtrans, @w3c: A bad news...

@vasilvv
Copy link
Collaborator Author

vasilvv commented Feb 13, 2024

Reopening, since there was some display of web developer interest recently.

@vasilvv vasilvv reopened this Feb 13, 2024
vasilvv added a commit to vasilvv/draft-ietf-webtrans-http3 that referenced this issue Feb 28, 2024
@vasilvv
Define key exporters
563574c 
Fixes ietf-wg-webtrans#116
@vasilvv vasilvv mentioned this issue Feb 28, 2024
Merged
@DavidSchinazi DavidSchinazi added the has pull request Issues for which a pull request exists label Mar 5, 2024
This was referenced Apr 4, 2024
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@vasilvv vasilvv

Labels
has pull request Issues for which a pull request exists ietf-117 Issues discussed at IETF 117
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Define key exporters vasilvv/draft-ietf-webtrans-http3
4 participants
@martinthomson @Neustradamus @vasilvv @DavidSchinazi